cf75bd7b3f52ec4b9e6e137fcf723f9b_JaffaCakes118 | Triage

Sharing

General

Target

cf75bd7b3f52ec4b9e6e137fcf723f9b_JaffaCakes118
Size

393KB
MD5

cf75bd7b3f52ec4b9e6e137fcf723f9b
SHA1

e9287590c9d6e9b64ac1a677f8ec92315b90b3ae
SHA256

c746592bde595e206959e0719a1599ee80280bc3d5e4c6f5d52a11a37903223f
SHA512

8693225618d3e36d562f5dd4e9a24114866c95a3908912cdbfb80317511051156bdc0707ade183c6bfe99670fa7b9c86bf7011520d3b83ebe9c236fc4ef9f684
SSDEEP

384:rFPyZNjtU2mUJKxvP/86ZlFduAcDIkZEt7MY+Ig8DBjzdq0khUqEK:r9yZlms6jFdSAQY+IRZdq0kh7EK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf75bd7b3f52ec4b9e6e137fcf723f9b_JaffaCakes118

Files

cf75bd7b3f52ec4b9e6e137fcf723f9b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

EnCHookCWindow
ge4gdcfsd1
ge4gdcfsd2
ge4gdcfsd3
ge4gdcfsd4
ge4gdcfsd5

Sections

CODE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 179B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ